CVE-2022-40267: Authentication Bypass Vulnerability in Web Server Function on MELSEC Series
First published: Fri Jan 20 2023(Updated: )
Predictable Seed in Pseudo-Random Number Generator (PRNG) vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series FX5U-xMy/z (x=32,64,80, y=T,R, z=ES,DS,ESS,DSS) with serial number 17X**** or later, and versions 1.280 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5U-xMy/z (x=32,64,80, y=T,R, z=ES,DS,ESS,DSS) with serial number 179**** and prior, and versions 1.074 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UC-xMy/z (x=32,64,96, y=T, z=D,DSS)) with serial number 17X**** or later, and versions 1.280 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UC-xMy/z (x=32,64,96, y=T, z=D,DSS)) with serial number 179**** and prior, and versions 1.074 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UC-32MT/DS-TS versions 1.280 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UC-32MT/DSS-TS versions 1.280 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UJ-xMy/z (x=24,40,60, y=T,R, z=ES,ESS) versions 1.042 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UJ-xMy/ES-A (x=24,40,60, y=T,R) versions 1.043 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5S-xMy/z (x=30,40,60,80, y=T,R, z=ES,ESS) versions 1.003 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UC-32MR/DS-TS versions 1.280 and prior, Mitsubishi Electric Corporation MELSEC iQ-R Series R00/01/02CPU versions 33 and prior, Mitsubishi Electric Corporation MELSEC iQ-R Series R04/08/16/32/120(EN)CPU versions 66 and prior allows a remote unauthenticated attacker to access the Web server function by guessing the random numbers used for authentication from several used random numbers.
Credit: Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Mitsubishi Electric MELSEC iQ-F Series | <=1.280 | |
| Mitsubishi Electric MELSEC iQ-F FX5U-xMy/z | <=1.280 | |
| Mitsubishi Electric MELSEC iQ-F Series | <=1.280 | |
| Mitsubishi Electric MELSEC iQ-F Series | <=1.074 | |
| Mitsubishi Electric MELSEC iQ-F FX5U-xMy/z | <=1.074 | |
| Mitsubishi Electric MELSEC iQ-F Series | <=1.074 | |
| Mitsubishi Electric MELSEC iQ-F Series | <=1.280 | |
| Mitsubishi Electric FX5UJ-xMy/z | <=1.042 | |
| Mitsubishi Electric FX5UJ-xMy/ES-A | <=1.043 | |
| Mitsubishi Electric FX5S-xMy/z | <=1.003 | |
| Mitsubishi Electric FX5U-80MT/ESS Firmware | ||
| Mitsubishi Electric FX5U-80MT/ESS | ||
| Mitsubishi Electric FX5U-32MT/DSS Firmware | ||
| Mitsubishi Electric FX5U-32MT/DSS | ||
| Mitsubishi Electric FX5U-64MT/DSS Firmware | ||
| Mitsubishi Electric FX5U-64MT/DSS | ||
| Mitsubishi Electric FX5U-80MT/DSS Firmware | ||
| Mitsubishi Electric FX5U-80MT/DSS | ||
| Mitsubishi Electric FX5UC-32MT/D Firmware | ||
| Mitsubishielectric Fx5uc-32mt/d | ||
| Mitsubishi Electric FX5UC-64MT/D Firmware | ||
| Mitsubishi Electric FX5UC-64MT/D | ||
| Mitsubishi Electric FX5UC-96MT/D Firmware | ||
| Mitsubishielectric Fx5uc-96mt/d | ||
| Mitsubishi Electric FX5UC-32MT/DSS Firmware | ||
| Mitsubishi Electric FX5UC-32MT/DSS | ||
| Mitsubishi Electric FX5UC-64MT/DSS Firmware | ||
| Mitsubishielectric Fx5uc-64mt/dss | ||
| Mitsubishi Electric FX5UC-96MT/DSS Firmware | ||
| Mitsubishi Electric FX5UC-96MT/DSS | ||
| Mitsubishi Electric FX5UC-32MT/DS-TS Firmware | <1.280 | |
| Mitsubishi Electric FX5UC-32MT/DS-TS | ||
| Mitsubishi Electric FX5UC-32MT/DSS-TS Firmware | <1.280 | |
| Mitsubishi Electric FX5UC-32MT/DSS-TS | ||
| Mitsubishielectric Fx5uc-32mr/ds-ts Firmware | <1.280 | |
| Mitsubishi Electric FX5UC-32MR/DS-TS | ||
| Mitsubishi Electric R00CPU Firmware | ||
| Mitsubishi Electric R00CPU | ||
| Mitsubishi Electric R01CPU | ||
| Mitsubishi Electric R01CPU | ||
| Mitsubishi Electric R02CPU Firmware | ||
| Mitsubishi Electric R02CPU | ||
| Mitsubishi Electric R04CPU | ||
| Mitsubishi Electric R04CPU | ||
| Mitsubishi Electric R08CPU Firmware | ||
| Mitsubishi Electric R08CPU Firmware | ||
| Mitsubiushi Electric R16cpu Firmware | ||
| Mitsubishi Electric R16CPU | ||
| Mitsubishi Electric R32CPU Firmware | ||
| Mitsubishi Electric R32CPU | ||
| Mitsubishi Electric R120CPU | ||
| Mitsubishi Electric R120PCPU | ||
| Mitsubishi Electric Rnencpu (n=04/08/16/32/120) Firmware | ||
| Mitsubishielectric R04encpu Firmware | ||
| Mitsubishi Electric R08ENCPU Firmware | ||
| Mitsubishielectric R08encpu Firmware | ||
| Mitsubishielectric R16encpu | ||
| Mitsubishi Electric R16ENCPU | ||
| Mitsubishi Electric R32 ENCPU | ||
| Mitsubishi Electric R32 encpu | ||
| Mitsubishi Electric R120ENCPU | ||
| Mitsubishi Electric R120ENCPU | ||
| Mitsubishi Electric FX5UJ-24MT/ES Firmware | <1.042 | |
| Mitsubishi Electric FX5UJ-24MT/ES | ||
| Mitsubishi Electric FX5UJ-40MT/ES Firmware | <1.042 | |
| Mitsubishi Electric FX5UJ-40MT/ES | ||
| Mitsubishielectric Fx5uj-60mt/es Firmware | <1.042 | |
| Mitsubishielectric Fx5uj-60mt/es | ||
| Mitsubishielectric Fx5uj-24mr/es Firmware | <1.042 | |
| Mitsubishi Electric FX5UJ-24MR/ES | ||
| Mitsubishi Electric FX5UJ-40MR/ES Firmware | <1.042 | |
| Mitsubishi Electric FX5UJ-40MR/ES | ||
| Mitsubishi Electric FX5UJ-60MR/ES Firmware | <1.042 | |
| Mitsubishi Electric FX5UJ-60MR/ES | ||
| Mitsubishi Electric FX5UJ-24MT/ESS Firmware | <1.042 | |
| Mitsubishielectric FX5UJ-24MT/ESS | ||
| Mitsubishielectric Fx5uj-40mt/ess Firmware | <1.042 | |
| Mitsubishi Electric FX5UJ-40MT/ESS | ||
| Mitsubishi Electric FX5UJ-60MT/ESS Firmware | <1.042 | |
| Mitsubishi Electric FX5UJ-60MT/ESS | ||
| Mitsubishielectric Fx5uj-24mt/es-a Firmware | <1.043 | |
| Mitsubishi Electric FX5UJ-24MT/ES-A | ||
| Mitsubishi Electric FX5UJ-40MT/ES-A Firmware | <1.043 | |
| Mitsubishi Electric FX5UJ-40MT/ES-A | ||
| Mitsubishi Electric FX5UJ-60MT/ES-A Firmware | <1.043 | |
| Mitsubishi Electric FX5UJ-60MT/ES-A | ||
| Mitsubishi Electric FX5UJ-24MR/ES-A Firmware | <1.043 | |
| Mitsubishielectric Fx5uj-24mr/es-a | ||
| Mitsubishielectric Fx5uj-40mr/es-a Firmware | <1.043 | |
| Mitsubishi Electric FX5UJ-40MR/ES-A | ||
| Mitsubishi Electric FX5UJ-60MR/ES-A Firmware | <1.043 | |
| Mitsubishielectric Fx5uj-60mr/es-a | ||
| Mitsubishielectric Fx5s-30mt/es Firmware | <1.003 | |
| Mitsubishi Electric FX5S-30MT/ES | ||
| Mitsubishi Electric FX5S-40MT/ES Firmware | <1.003 | |
| Mitsubishi Electric FX5S-40MT/ES | ||
| Mitsubishi Electric FX5S-60MT/ES Firmware | <1.003 | |
| Mitsubishi Electric FX5S-60MT/ES | ||
| Mitsubishi Electric FX5S-80MT/ES Firmware | <1.003 | |
| Mitsubishi Electric FX5S-80MT/ES | ||
| Mitsubishielectric Fx5s-30mr/es Firmware | <1.003 | |
| Mitsubishielectric Fx5s-30mr/es | ||
| Mitsubishi Electric FX5S-40MR/ES Firmware | <1.003 | |
| Mitsubishi Electric FX5S-40MR/ES | ||
| Mitsubishi Electric FX5S-60MR/ES Firmware | <1.003 | |
| Mitsubishi Electric FX5S-60MR/ES | ||
| Mitsubishielectric Fx5s-80mr/es Firmware | <1.003 | |
| Mitsubishi Electric FX5S-80MR/ES | ||
| Mitsubishi Electric FX5S-30MT/ESS Firmware | <1.003 | |
| Mitsubishi Electric FX5S-30MT/ESS | ||
| Mitsubishielectric Fx5s-40mt/ess Firmware | <1.003 | |
| Mitsubishi Electric FX5S-40MT/ESS | ||
| Mitsubishi Electric FX5S-60MT/ESS Firmware | <1.003 | |
| Mitsubishi Electric FX5S-60MT/ESS | ||
| Mitsubishi Electric FX5S-80MT/ESS Firmware | <1.003 | |
| Mitsubishi Electric FX5S-80MT/ESS |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2022-40267?
The severity of CVE-2022-40267 is rated as critical with a CVSS score of 9.1.
How can I fix the Predictable Seed in Pseudo-Random Number Generator vulnerability in Mitsubishi Electric devices?
To fix the vulnerability, users should apply the security patches provided by Mitsubishi Electric Corporation for the affected firmware versions.
Is my Mitsubishi Electric device vulnerable to CVE-2022-40267?
Check the list of affected firmware versions provided by Mitsubishi Electric Corporation to determine if your device is vulnerable to CVE-2022-40267.
- agent/weakness
- agent/type
- agent/title
- agent/author
- agent/description
- agent/first-publish-date
- agent/event
- agent/severity
- agent/references
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/trending
- agent/source
- collector/ics-cert-advisory
- source/ICS
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- vendor/mitsubishi electric
- canonical/mitsubishi electric melsec iq-f series
- version/mitsubishi electric melsec iq-f series/1.280
- canonical/mitsubishi electric melsec iq-f fx5u-xmy/z
- version/mitsubishi electric melsec iq-f fx5u-xmy/z/1.280
- version/mitsubishi electric melsec iq-f series/1.074
- version/mitsubishi electric melsec iq-f fx5u-xmy/z/1.074
- canonical/mitsubishi electric fx5uj-xmy/z
- version/mitsubishi electric fx5uj-xmy/z/1.042
- canonical/mitsubishi electric fx5uj-xmy/es-a
- version/mitsubishi electric fx5uj-xmy/es-a/1.043
- canonical/mitsubishi electric fx5s-xmy/z
- version/mitsubishi electric fx5s-xmy/z/1.003
- vendor/mitsubishielectric
- canonical/mitsubishi electric fx5u-80mt/ess firmware
- canonical/mitsubishi electric fx5u-80mt/ess
- canonical/mitsubishi electric fx5u-32mt/dss firmware
- canonical/mitsubishi electric fx5u-32mt/dss
- canonical/mitsubishi electric fx5u-64mt/dss firmware
- canonical/mitsubishi electric fx5u-64mt/dss
- canonical/mitsubishi electric fx5u-80mt/dss firmware
- canonical/mitsubishi electric fx5u-80mt/dss
- canonical/mitsubishi electric fx5uc-32mt/d firmware
- canonical/mitsubishielectric fx5uc-32mt/d
- canonical/mitsubishi electric fx5uc-64mt/d firmware
- canonical/mitsubishi electric fx5uc-64mt/d
- canonical/mitsubishi electric fx5uc-96mt/d firmware
- canonical/mitsubishielectric fx5uc-96mt/d
- canonical/mitsubishi electric fx5uc-32mt/dss firmware
- canonical/mitsubishi electric fx5uc-32mt/dss
- canonical/mitsubishi electric fx5uc-64mt/dss firmware
- canonical/mitsubishielectric fx5uc-64mt/dss
- canonical/mitsubishi electric fx5uc-96mt/dss firmware
- canonical/mitsubishi electric fx5uc-96mt/dss
- canonical/mitsubishi electric fx5uc-32mt/ds-ts firmware
- canonical/mitsubishi electric fx5uc-32mt/ds-ts
- canonical/mitsubishi electric fx5uc-32mt/dss-ts firmware
- canonical/mitsubishi electric fx5uc-32mt/dss-ts
- canonical/mitsubishielectric fx5uc-32mr/ds-ts firmware
- canonical/mitsubishi electric fx5uc-32mr/ds-ts
- canonical/mitsubishi electric r00cpu firmware
- canonical/mitsubishi electric r00cpu
- canonical/mitsubishi electric r01cpu
- canonical/mitsubishi electric r02cpu firmware
- canonical/mitsubishi electric r02cpu
- canonical/mitsubishi electric r04cpu
- canonical/mitsubishi electric r08cpu firmware
- canonical/mitsubiushi electric r16cpu firmware
- canonical/mitsubishi electric r16cpu
- canonical/mitsubishi electric r32cpu firmware
- canonical/mitsubishi electric r32cpu
- canonical/mitsubishi electric r120cpu
- canonical/mitsubishi electric r120pcpu
- canonical/mitsubishi electric rnencpu (n=04/08/16/32/120) firmware
- canonical/mitsubishielectric r04encpu firmware
- canonical/mitsubishi electric r08encpu firmware
- canonical/mitsubishielectric r08encpu firmware
- canonical/mitsubishielectric r16encpu
- canonical/mitsubishi electric r16encpu
- canonical/mitsubishi electric r32 encpu
- canonical/mitsubishi electric r120encpu
- canonical/mitsubishi electric fx5uj-24mt/es firmware
- canonical/mitsubishi electric fx5uj-24mt/es
- canonical/mitsubishi electric fx5uj-40mt/es firmware
- canonical/mitsubishi electric fx5uj-40mt/es
- canonical/mitsubishielectric fx5uj-60mt/es firmware
- canonical/mitsubishielectric fx5uj-60mt/es
- canonical/mitsubishielectric fx5uj-24mr/es firmware
- canonical/mitsubishi electric fx5uj-24mr/es
- canonical/mitsubishi electric fx5uj-40mr/es firmware
- canonical/mitsubishi electric fx5uj-40mr/es
- canonical/mitsubishi electric fx5uj-60mr/es firmware
- canonical/mitsubishi electric fx5uj-60mr/es
- canonical/mitsubishi electric fx5uj-24mt/ess firmware
- canonical/mitsubishielectric fx5uj-24mt/ess
- canonical/mitsubishielectric fx5uj-40mt/ess firmware
- canonical/mitsubishi electric fx5uj-40mt/ess
- canonical/mitsubishi electric fx5uj-60mt/ess firmware
- canonical/mitsubishi electric fx5uj-60mt/ess
- canonical/mitsubishielectric fx5uj-24mt/es-a firmware
- canonical/mitsubishi electric fx5uj-24mt/es-a
- canonical/mitsubishi electric fx5uj-40mt/es-a firmware
- canonical/mitsubishi electric fx5uj-40mt/es-a
- canonical/mitsubishi electric fx5uj-60mt/es-a firmware
- canonical/mitsubishi electric fx5uj-60mt/es-a
- canonical/mitsubishi electric fx5uj-24mr/es-a firmware
- canonical/mitsubishielectric fx5uj-24mr/es-a
- canonical/mitsubishielectric fx5uj-40mr/es-a firmware
- canonical/mitsubishi electric fx5uj-40mr/es-a
- canonical/mitsubishi electric fx5uj-60mr/es-a firmware
- canonical/mitsubishielectric fx5uj-60mr/es-a
- canonical/mitsubishielectric fx5s-30mt/es firmware
- canonical/mitsubishi electric fx5s-30mt/es
- canonical/mitsubishi electric fx5s-40mt/es firmware
- canonical/mitsubishi electric fx5s-40mt/es
- canonical/mitsubishi electric fx5s-60mt/es firmware
- canonical/mitsubishi electric fx5s-60mt/es
- canonical/mitsubishi electric fx5s-80mt/es firmware
- canonical/mitsubishi electric fx5s-80mt/es
- canonical/mitsubishielectric fx5s-30mr/es firmware
- canonical/mitsubishielectric fx5s-30mr/es
- canonical/mitsubishi electric fx5s-40mr/es firmware
- canonical/mitsubishi electric fx5s-40mr/es
- canonical/mitsubishi electric fx5s-60mr/es firmware
- canonical/mitsubishi electric fx5s-60mr/es
- canonical/mitsubishielectric fx5s-80mr/es firmware
- canonical/mitsubishi electric fx5s-80mr/es
- canonical/mitsubishi electric fx5s-30mt/ess firmware
- canonical/mitsubishi electric fx5s-30mt/ess
- canonical/mitsubishielectric fx5s-40mt/ess firmware
- canonical/mitsubishi electric fx5s-40mt/ess
- canonical/mitsubishi electric fx5s-60mt/ess firmware
- canonical/mitsubishi electric fx5s-60mt/ess
- canonical/mitsubishi electric fx5s-80mt/ess firmware
- canonical/mitsubishi electric fx5s-80mt/ess